Facebooks lead EU regulator is asking questions about its latest security fail

Facebook’s lead data protection regulator in Europe has confirmed it’s put questions to the company about a major security breach that we reported on yesterday. “The DPC became aware of this issue through the recent media coverage and we immediately made contact with Facebook and we have asked them a series of questions. We are awaiting Facebook’s responses to those questions,” a spokeswoman for the Irish Data Protection Commission told us. We’ve reached out to Facebook for a response. As we reported earlier, a security research discovered an unsecured database of hundreds of millions of phone numbers linked to Facebook accounts. The exposed server contained more than 419 million records over several databases on Facebook users from multiple countries, including …

UKs ICO fines British Airways a record 183M over GDPR breach that leaked data from 500,000 users

The U.K.’s Information Commissioner is starting off the week with a GDPR bang: This morning, it announced that it has fined British Airways and its parent International Airlines Group (IAG) £183.39 million ($230 million) in connection with a data breach that took place last year that affected a whopping 500,000 customers browsing and booking tickets online. In an investigation, the ICO said that it found “that a variety of information was compromised by poor security arrangements at [BA], including log in, payment card, and travel booking details as well name and address information.” The fine — 1.5% of BA’s total revenues for the year that ended December 31, 2018 — is the highest-ever that the ICO has leveled at a company over a …